Cisco Support Community
cancel
Showing results for 
Search instead for 
Did you mean: 
Announcements

Welcome to Cisco Support Community. We would love to have your feedback.

For an introduction to the new site, click here. And see here for current known issues.

New Member

MAC extended ACL

Software Version: 12.1(19)EA1d

Problem Details: I'm testing the MAC extended ACL feature on our 3560

switch (sw 12.1(19)EA1d). It appears that it's working properly for the

PC's with MAC addresses permitted in the ACL. However, when I try to

connect a PC with MAC that is not in the "permit" ACL, the PC is able

to get an IP address from our DHCP server. Can you help with this?

======================

mac access-list extended MAC_ACL

permit host abcd.abcd.abcd any

permit host abcd.abcd.abcc any

!

interface fa0/26

switchport access vlan 2

switchport mode access

no ip address

no mdix auto

power inline never

mac access-group MAC_ACL in

spanning-tree portfast

!

Thanks

Binh

1 REPLY
Silver

Re: MAC extended ACL

Named MAC extended ACLs can not be applied to L3 interfaces.

Define extended MAC ACLs to define the interesting traffic for the VLAN maps.

Switch(config)# mac access-list extended denyIPXACL

113
Views
0
Helpful
1
Replies